Description
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges.
Below is a complete list of vulnerabilities:
- Security UI vulnerability in eval() function can be exploited to spoof user interface and execute arbitrary code.
- Memory safety vulnerabilities can be exploited to execute arbitrary code.
- Elevation of privilege vulnerability on Windows can be exploited to bypass security restrictions, gain privileges and execute arbitrary code.
Original advisories
Related products
CVE list
- CVE-2020-15663 critical
- CVE-2020-15664 high
- CVE-2020-15670 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!